Deal4Me

Known Toolbar

What is Deal4Me?

Deal4Me is software application developed by InstalleRex-WebPick. It is most commonly found on computers running Windows 7 with nearly 65.28% of installations running this operating system. Deal4Me's installer is typically 1.00 MB in size and installs around 60 files.

Deal4Me is most popular in the United States with 50.00% of installations residing in this country.

About Deal4Me?

The Deal 4 Me web browser extension is a product of JustPlug.It and is distributed through the WebPick (InstalleRex) download and install manager. It is bundled with various adware offers and functions as a cross browser extension with multiple components, including a Windows service, an auto-starting feature, and a browser toolbar/plugin. This extension is specifically designed to deliver advertisements in the form of banner ads, hyper-text links, and pop-ups within the browser. In some cases, it may also hijack existing website advertising and inject affiliate codes in links as coupon offers. Additionally, the displayed advertisements may include deceptive malvertising ads for 'required' updates of common programs. Upon installation, the program may also install bundled adware utilities and additional browser extensions, as well as modify the browser's default security settings.

Multiple virus scanners have detected malware in Deal4Me.

EN.dll (MD5: 67ee6efc066c2d3a5bd277ba4b813e8b) has been flagged by 24 scanners:

Scanner Software	Version	Result
avast!	8.0.1489.320	Win32:Adware-gen [Adw]
AVG	14.0.0.4007	Generic5.BFGT
Baidu-International	3.5.1.41473	Adware.Win32.MultiPlug.bBN
Comodo Security	19269	Application.Win32.MultiPlug.AUAU
Dr.Web	7.0.9.4080	Trojan.Crossrider.29972
ESET-NOD32	10294	a variant of Win32/AdWare.MultiPlug.BN
IKARUS anti.virus	T3.1.7.5.0	PUA.BHO
K7 AntiVirus	9.183.13125	Adware ( 004a01c51 )
K7GW	9.183.13125	Adware ( 004a01c51 )
TrendMicro-HouseCall	9.700.0.1001	Suspicious_GEN.F47V0815
Lavasoft Ad-Aware	12.0.163.0	Gen:Variant.Adware.61989
AhnLab-V3	2014.08.26.00	Trojan/Win32.Preloader
Avira AntiVir	7.11.169.68	TR/Crypt.EPACK.Gen2
Bitdefender	7.2	Gen:Variant.Adware.61989
Emsisoft Anti-Malware	3.0.0.600	Gen:Variant.Adware.61989 (B)
F-Secure	11.0.19100.45	Gen:Variant.Adware.61989
G Data	24	Gen:Variant.Adware.61989
Malwarebytes	1.75.0.1	PUP.Optional.MultiPlug
MicroWorld-eScan	12.0.250.0	Gen:Variant.Adware.61989
Kaspersky	12.0.0.1225	not-a-virus:AdWare.Win32.MultiPlug.bfk
Sophos	4.98.0	Generic PUA GP
VIPRE Antivirus	29736	Trojan.Win32.Generic!BT
Qihoo-360	1.0.0.1015	HEUR/Malware.QVM10.Gen
Trend Micro	9.740-1012	ADW_MULTIPLUG

L.exe (MD5: 0e7b4aef600f521c24a068e618019acb) has been flagged by 48 scanners:

Scanner Software	Version	Result
Lavasoft Ad-Aware	12.0.163.0	Gen:Variant.Adware.Strictor.61989
AhnLab-V3	2014.12.03.00	Trojan/Win32.Preloader
ALYac	1.0.1.4	Gen:Variant.Adware.Strictor.61989
avast!	8.0.1489.320	Win32:Adware-gen [Adw]
AVG	15.0.0.4189	Generic5.BULU
Avira	7.11.190.4	Adware/Strictor.61989.38
AVware	1.5.0.21	Trojan.Win32.Generic!BT
Baidu-International	3.5.1.41473	Adware.Win32.MultiPlug.BBN
Bitdefender	7.2	Gen:Variant.Adware.Strictor.61989
Comodo Security	20270	ApplicUnwnt
Dr.Web	7.0.10.8210	Trojan.Crossrider.37456
ESET-NOD32	10818	a variant of Win32/AdWare.MultiPlug.BN
Fortinet FortiGate	5.0.999.0	Riskware/MultiPlug
F-Prot	4.7.1.166	W32/A-958929e9!Eldorado
F-Secure	11.0.19100.45	Gen:Variant.Adware.Strictor.61989
G Data	24	Gen:Variant.Adware.Strictor.61989
K7 AntiVirus	9.186.14210	Adware ( 004a07251 )
K7GW	9.186.14219	Adware ( 004a07251 )
Malwarebytes	1.75.0.1	PUP.Optional.MultiPlug
McAfee	6.0.5.614	Artemis!0E7B4AEF600F
McAfee-GW-Edition	v2014.2	BehavesLike.Win32.BadFile.jh
MicroWorld-eScan	12.0.250.0	Gen:Variant.Adware.Strictor.61989
NANO AntiVirus	0.28.6.63850	Riskware.Win32.Strictor.dfywqx
Panda Antivirus	4.6.4.2	Trj/Chgt.I
Sophos	4.98.0	Generic PUA KI
Symantec	20141.1.0.330	Adware.Popuppers
Trend Micro	9.740.0.1012	TROJ_GEN.R02SC0EJ714
TrendMicro-HouseCall	9.700.0.1001	TROJ_GEN.R02SC0EJ714
VIPRE Antivirus	35370	Trojan.Win32.Generic!BT
AegisLab	1.5	AdWare.W32.MegaSearch
Agnitum Outpost	5.5.1.3	PUA.MultiPlug!
Antiy-AVL	1.0.0.1	GrayWare[AdWare:not-a-virus,HEUR]/Win32.Agent
Emsisoft Anti-Malware	3.0.0.600	Gen:Variant.Adware.Graftor.153998 (B)
Rising Antivirus	25.0.0.11	PE:Trojan.Win32.Generic.175E7B5E!392067934
Bkav FE	1.3.0.4959	W32.ToolbarEscort.Adware
CAT-QuickHeal	14.00	AdWare.BHO.r6 (Not a Virus)
IKARUS anti.virus	T3.1.6.1.0	Win32.SuspectCrc
Kaspersky	12.0.0.1225	not-a-virus:AdWare.Win32.BHO.bdnc
Vba32 AntiVirus	3.12.26.3	AdWare.BHO
Tencent	1.0.0.1	Win32.Adware.Agent.Aiio
Avira AntiVir	7.11.167.230	ADWARE/Adware.Gen
Norman	7.04.04	Multiplug.A
nProtect	2014-08-18.01	Adware.Agent.NYS
SUPERAntiSpyware	5.6.0.1032	Adware.Multiplug/Variant
Qihoo-360	1.0.0.1015	Win32/Trojan.Adware.273
Zillya	2.0.0.1977	Adware.MultiPlug.Win64.10
ViRobot	2011.4.7.4223	Adware.MultiPlug.398336
Kingsoft AntiVirus	2013.04.09.267	Win32.Troj.Generic.a.(kcloud)

tEx.dll (MD5: 6bdd2b931e45fa910c821a3beb07928c) has been flagged by 47 scanners:

Scanner Software	Version	Result
Lavasoft Ad-Aware	12.0.163.0	Application.Generic.604038
Agnitum Outpost	5.5.1.3	PUA.BHO!
Antiy-AVL	1.0.0.1	Trojan/Win32.TGeneric
avast!	8.0.1489.320	Win32:Dropper-gen [Drp]
AVG	14.0.0.3972	Generic5.APQB
Baidu-International	3.5.1.41473	Adware.Win32.BHO.71
Bitdefender	7.2	Application.Generic.604038
Bkav FE	1.3.0.4959	W32.ToolbarEscort.Adware
CAT-QuickHeal	14.00	AdWare.BHO.r6 (Not a Virus)
Comodo Security	18598	ApplicUnwnt.Win32.InstallRex.ALC
ESET-NOD32	9968	a variant of Win32/AdWare.MultiPlug.T
F-Secure	11.0.19100.45	Application.Generic.604038
G Data	24	Application.Generic.604038
IKARUS anti.virus	T3.1.6.1.0	Win32.SuspectCrc
K7 AntiVirus	9.180.12463	Adware ( 004976341 )
K7GW	9.180.12463	Adware ( 004976341 )
Kaspersky	12.0.0.1225	not-a-virus:AdWare.Win32.BHO.bdnc
Malwarebytes	1.75.0.1	PUP.Optional.MultiPlug.A
McAfee	6.0.4.564	RDN/Generic PUP.x!cf3
McAfee-GW-Edition	2013	RDN/Generic PUP.x!cf3
MicroWorld-eScan	12.0.250.0	Application.Generic.604038
NANO AntiVirus	0.28.0.60253	Riskware.Win32.BHO.dbdfeq
Panda Antivirus	10.0.3.5	Trj/CI.A
Sophos	4.98.0	Generic PUA IO
Symantec	20131.1.5.61	Adware.BL
Trend Micro	9.740.0.1012	ADW_MULTIPLUG
TrendMicro-HouseCall	9.700.0.1001	ADW_MULTIPLUG
Vba32 AntiVirus	3.12.26.3	AdWare.BHO
VIPRE Antivirus	30454	Trojan.Win32.Generic!BT
AegisLab	1.5	AdWare.W32.MegaSearch
AhnLab-V3	2014.10.23.00	Adware/Win32.Agent
Avira	7.11.180.188	TR/Graftor.151492.2
AVware	1.5.0.21	Trojan.Win32.Generic!BT
Emsisoft Anti-Malware	3.0.0.600	Gen:Variant.Adware.Graftor.151492 (B)
Fortinet FortiGate	5.1.152.0	Riskware/MultiPlug
Tencent	1.0.0.1	Win32.Adware.Agent.Aiio
Avira AntiVir	7.11.167.230	ADWARE/Adware.Gen
Norman	7.04.04	Multiplug.A
nProtect	2014-08-18.01	Adware.Agent.NYS
Rising Antivirus	25.0.0.11	PE:Trojan.Win32.Generic.1686F646!377943622
SUPERAntiSpyware	5.6.0.1032	Adware.Multiplug/Variant
Qihoo-360	1.0.0.1015	Win32/Trojan.Adware.273
Zillya	2.0.0.1977	Adware.MultiPlug.Win64.10
Dr.Web	7.00.9.04080	Trojan.Crossrider.8415
ViRobot	2011.4.7.4223	Adware.MultiPlug.398336
Kingsoft AntiVirus	2013.04.09.267	Win32.Troj.Generic.a.(kcloud)
F-Prot	4.7.1.166	W32/A-4a0379ef!Eldorado

83S3PmrAxO.exe (MD5: d39594b39e884ec8a901b37ef37b98f0) has been flagged by 33 scanners:

Scanner Software	Version	Result
Lavasoft Ad-Aware	12.0.163.0	Gen:Variant.Adware.Graftor.146103
AhnLab-V3	2014.08.04.00	Trojan/Win32.Preloader
AVG	14.0.0.3986	Generic_r.QQ
Baidu-International	3.5.1.41473	Trojan.Win32.MultiPlug.bAG
Bitdefender	7.2	Gen:Variant.Adware.Graftor.146103
Emsisoft Anti-Malware	3.0.0.600	Gen:Variant.Adware.Graftor.146103 (B)
ESET-NOD32	10197	a variant of Win32/AdWare.MultiPlug.AG
F-Secure	11.0.19100.45	Gen:Variant.Adware.Graftor.146103
G Data	24	Gen:Variant.Adware.Graftor.146103
Malwarebytes	1.75.0.1	PUP.Optional.MultiPlug
MicroWorld-eScan	12.0.250.0	Gen:Variant.Adware.Graftor.146103
Panda Antivirus	10.0.3.5	Trj/Genetic.gen
Avira	7.11.172.132	ADWARE/MultiPlug.Gen
McAfee-GW-Edition	v2014.2	BehavesLike.Win32.Adware.jm
Sophos	4.98.0	Generic PUA MP
avast!	8.0.1489.320	Win32:Adware-gen [Adw]
AVware	1.5.0.16	Trojan.Win32.Generic!BT
Comodo Security	19281	Application.Win32.MultiPlug.AUAU
Fortinet FortiGate	5.1.152.0	Riskware/MultiPlug
IKARUS anti.virus	T3.1.7.5.0	PUA.BHO
K7 AntiVirus	9.183.13139	Adware ( 004a01c51 )
K7GW	9.183.13139	Adware ( 004a01c51 )
TrendMicro-HouseCall	9.700.0.1001	Suspicious_GEN.F47V0816
VIPRE Antivirus	32454	Trojan.Win32.Generic!BT
McAfee	6.0.4.564	RDN/Generic PUP.x!c2k
Symantec	20131.1.5.61	Adware.BL
Qihoo-360	1.0.0.1015	Win32/Trojan.Adware.453
Tencent	1.0.0.1	Win64.Adware.Multiplug.Lmbj
Avira AntiVir	7.11.168.26	TR/Crypt.EPACK.Gen2
NANO AntiVirus	0.28.2.61721	Trojan.Win32.EPACK.ddxhzv
Dr.Web	7.0.9.4080	Trojan.Crossrider.29972
Kaspersky	12.0.0.1225	not-a-virus:AdWare.Win32.MultiPlug.bfk
Trend Micro	9.740-1012	ADW_MULTIPLUG

11og_CFkV.dll (MD5: f3147f862ab2fe690c49d6eed659cb57) has been flagged by 31 scanners:

Scanner Software	Version	Result
avast!	8.0.1489.320	Win32:Adware-gen [Adw]
AVG	14.0.0.4007	Generic5.BFGT
AVware	1.5.0.16	Trojan.Win32.Generic!BT
Baidu-International	3.5.1.41473	Adware.Win32.MultiPlug.BBN
Comodo Security	19281	Application.Win32.MultiPlug.AUAU
ESET-NOD32	10300	a variant of Win32/AdWare.MultiPlug.BN
Fortinet FortiGate	5.1.152.0	Riskware/MultiPlug
IKARUS anti.virus	T3.1.7.5.0	PUA.BHO
K7 AntiVirus	9.183.13139	Adware ( 004a01c51 )
K7GW	9.183.13139	Adware ( 004a01c51 )
TrendMicro-HouseCall	9.700.0.1001	Suspicious_GEN.F47V0816
VIPRE Antivirus	32454	Trojan.Win32.Generic!BT
AhnLab-V3	2014.06.11.00	Trojan/Win64.Preloader
G Data	24	Win64.Adware.Megasearch.C
Malwarebytes	1.75.0.1	PUP.Optional.MultiPlug.A
McAfee	6.0.4.564	RDN/Generic PUP.x!c2k
McAfee-GW-Edition	2013	RDN/Generic PUP.x!c2k
Symantec	20131.1.5.61	Adware.BL
Bitdefender	7.2	Adware.Generic.939645
Emsisoft Anti-Malware	3.0.0.599	Adware.Generic.939645 (B)
MicroWorld-eScan	12.0.250.0	Adware.Generic.939645
Qihoo-360	1.0.0.1015	Win32/Trojan.Adware.453
Tencent	1.0.0.1	Win64.Adware.Multiplug.Lmbj
Avira AntiVir	7.11.168.26	TR/Crypt.EPACK.Gen2
NANO AntiVirus	0.28.2.61721	Trojan.Win32.EPACK.ddxhzv
Sophos	4.98.0	Generic PUA DE
Dr.Web	7.0.9.4080	Trojan.Crossrider.29972
Lavasoft Ad-Aware	12.0.163.0	Gen:Variant.Adware.61989
F-Secure	11.0.19100.45	Gen:Variant.Adware.61989
Kaspersky	12.0.0.1225	not-a-virus:AdWare.Win32.MultiPlug.bfk
Trend Micro	9.740-1012	ADW_MULTIPLUG

Software Details

URL:: –
Support:: –
Installation path:: C:\ProgramData\deal4me
Uninstaller:: "C:\ProgramData\Deal4Me\Us.exe" /s /n /C:"ExecuteCommands;UninstallCommands" ""
Size:: 1.00 MB
Language:: English

Deal4Me Executable Details

Primary executable:: us.exe
Name:: Deal4Me
Path:: C:\ProgramData\deal4me\us.exe
MD5:: bca52abb986cea83b447557b37342e49
SHA-1:: –
SHA-256:: –

Files installed by Deal4Me

File Type	Filename	MD5
EXE	us.exe	bca52abb986cea83b447557b37342e49
EXE	V.EXE	470a02e6e6d293c6d2419e1778162c84
DLL	EN.dll Malware	67ee6efc066c2d3a5bd277ba4b813e8b
EXE	L.exe Malware	0e7b4aef600f521c24a068e618019acb
EXE	fs.exe	743a67c90b7ab894aa9c211bb435f3d4
DLL	FS.DLL	fa8e8dfeb61889c699f21e8f8b2b3e67
EXE	K.exe	e964bc508f0bda22e201e540e5a1a984
DLL	tEx.dll Malware	6bdd2b931e45fa910c821a3beb07928c
EXE	83S3PmrAxO.exe Malware	d39594b39e884ec8a901b37ef37b98f0
DLL	11og_CFkV.x64.dll	aeb287ca935312040c5f358dc34cf368

Repair Deal4Me

Having issues with Deal4Me?

We recommend Fortect System Repair to automatically fix these issues

Download Now

Popularity

20% of users keep Deal4Me installed

Overall Rating

Bad

Geography Distribution